Getting around X-Frame-Options in Chrome extension for a Chrome Web Store URL

Question

Getting around X-Frame-Options in a Chrome extension is pretty easy. But unfortunately this is not working for a Chrome Web Store URL. When I try to load https://chrome.google.com/webstore/category/apps in an iframe, I still get this console error:

Refused to display 'https://chrome.google.com/webstore/category/apps' in a frame because it set 'X-Frame-Options' to 'sameorigin'.

And this is what gets loaded inside the iframe tag: <html><head></head><body></body></html>

I'm sure I removed the X-Frame-Options header correctly in onHeadersReceived(), as this works for example with http://www.google.com (and it doesn't without removing the X-Frame-Options header).

Any idea on how to fix this?

score 1 · Accepted Answer · edited May 23 '17 at 11:58

1

The Chrome Web Store has special permissions that block extensions from manipulating it. See this answer for more details.

edited May 23 '17 at 11:58

Community

1
1

answered Jan 19 '14 at 16:40

abraham

46,583
10
100
152

Getting around X-Frame-Options in Chrome extension for a Chrome Web Store URL

1 Answers1